levanit7 avatar image
levanit7 asked

We need to protect a web server hosting 3000+ web sites, securely. Need your advice.


We have an e-commerce business hosted approximately 3000 web sites on a web server, from which at least 500 web sites (currently, and growing) have its own domain name available under https protocol. Searching for some solution to protect them, recently we’ve got opportunity to test Sophos XG Firewall 2300 series. Unfortunately it requires to upload individual certificates to the firewall WAF rule, e.g. create individual WAF rule for each site in order to work, which is too complex and on top of that, it has limitation of maximum 60 WAF rules to be active at the same time. So my question is, how Fortigate/Fortiweb firewalls handle this, are they also require to upload individual certificate for each site, or some general WAF rule can be created to protect them all from attacks like SQL inject, XSS and etc.?

If it does require uploading individual certificate for each domain name hosted securely under https protocol, how many certificates/policies can be uploaded to the firewall? In other words, what is the maximum number of web sites hosted securely, using their own certificate on a single server which can be protected by either Fortigate or Fortiweb?


10 |600

Up to 8 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

0 Answers


Write an Answer

Hint: Notify or tag a user in this post by typing @username.

Up to 10 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

Welcome to FortiAnswers

FortiAnswers is the space dedicated to FortiSASE and FortiOS questions and suggestions.

  • Please review the Community guidelines
  • If you are a moderator, please refer to the Moderation guidelines
  • If something in the above guidelines is unclear, please post your question to the Community Feedback space or the Moderators' space